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DETAILED ACTION 

This action is in response to the Amendment filed on June 8, 2005. 
Claims 5, 7, 12-14, 18-19, 21-24, and 28 are canceled. 
Claims 1-4, 6, 8-11, 15-17, 20, 25-27, and 29 have been amended and are 
herein considered. 

Claims 30-35 are newly presented. 

Claims 1-4, 6, 8-11, 15-17, 20, 25-27, and 29-35 are pending. 

Response to Arguments 

Applicant's arguments filed June 8, 2005 have been fully considered but they are 
not persuasive. 

Applicant argues that Figures 5 and 6 of Droge disclose 'merely using two 
encryptions for two different protocol layers in a single protocol stack 1 and therefore 
neither disclose nor suggest Applicant's independent Claims 1,6, 10 and 29. The 
Examiner would like to bring to the Applicant's attention the last line of paragraph 50 in 
Droge where it is specifically stated: 

"Algorithms that may be used to encrypt data at both the data link and IP layers 
include without limitation, the DATA ENCRYPTION STANDARD (DES), TRIPLE 
DES, the ADVANCED ENCRYPTION STANDARD (AES), SKIPJACK and 
BLOWFISH." 
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The Examiner would also like to call the Applicant's attention the to paragraph 50 in its 
entirety, wherein Droge teaches encrypting the data a first time before 'packetizing' the 
encrypted data ("adding a header to the encrypted payload to form a data packet") and 
further encrypting the packet so that it could be sent out over an existing network link. 

The Examiner fails to appreciate the Applicant's argument distinguishing 
between his invention and that of Droge. 

The Examiner would also like to note, that although the previous office action 
cited specific figures and paragraphs, those citations were for the purpose of aiding the 
Applicant in understanding the Examiner's rejections. However, the Examiner has 
rejected the Applicant's invention in light of Droge in its entirety and not merely these 
specific paragraphs and figures. The Examiner has included within this office action 
additional citations and would like to suggest that the Applicant read Droge in its entirety 
in order to fully understand the Examiner's rejections. 

The Applicant has not added additional limitations into the claims from the 
specification, but rather has chosen to include limitations from dependent claims within 
the independent claims. The Examiner's previous office action has already addressed 
each and every claim limitation, citing the passages in Droge where each was taught. 
Applicant's silence on these issues has been taken as agreement with the Examiner's 
previous assertions. 

Therefore, based on the above arguments, the Examiner maintains the rejections 
as set forth below. 
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Claim Rejections - 35 USC § 102 

The text of those sections of Title 35, U.S. Code not included in this action can 
be found in a prior Office action. 

Claims 1-4, 6, 8-11, 15-17, 20, 25-27, and 29-35 are rejected under 35 
U.S.C. 102(e) as being anticipated by Droge (U.S. Patent Application 09/841,168) and 
Schneier (Applied Cryptography, 2 nd ed.). Schneier has been relied upon as a 
reference for features inherent to the Data Encryption Standard (DES). 

As per claim 1, Droge discloses a method for transmitting data over a wireless 
link to a gateway providing access to a wide area network, the method comprising: 
encrypting a payload according to a first encryption algorithm; adding a header to the 
encrypted payload to form a data packet; encrypting the encrypted payload and the 
header of the data packet according to a second encryption algorithm, the second 
encryption algorithm being an encryption algorithm used for secure communication over 
the wireless link; and transmitting the encrypted data packet over the wireless link (see 
Droge Abstract; paragraphs 36, 40, and 50; figures 5 and 6). 

As per claim 2, Droge discloses the method of claim 1 , wherein the first algorithm 
uses a symmetric key (see Droge paragraph 53 reference "DES"). 

As per claim 3, Droge discloses the method of claim 1 , further comprising: 
receiving the data packet at the gateway; decrypting data packet at the gateway 
according to the second algorithm; forwarding the recovered data packet to a computer 
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on the wide area network; and decrypting the payload at the computer on the wide area 
network according to the first algorithm (see Droge paragraphs 36-40 and 51). 

As per claim 4, Droge discloses the method of claim 1 , wherein the first algorithm 
uses a symmetric session key (see Droge paragraph 53 reference "DES"). 

As per claim 6, Droge discloses a device for transmitting data over a wireless link 
to a gateway providing access to a wide area network, comprising: a wireless 
transceiver (see Droge paragraph 36 and 40); and an encryption engine coupled to the 
wireless transceiver for encrypting a payload according to a first encryption algorithm, 
adding a header to the payload to form a data packet, and encrypting the data packet 
according to a second algorithm, the second encryption algorithm being an algorithm for 
secured communications over a wireless link (see Droge paragraphs 35, 39-41 and 
figures 5,6). 

As per claim 8, Droge discloses the device of claim 6, wherein the payload 
comprises location information regarding the location of the wireless device (see Droge 
paragraph 58, reference "IP header"). 

As per claim 9, Droge discloses the device of claim 6, wherein the first encryption 
algorithm employs a symmetric key (see Droge paragraph 53 reference "DES"). 

As per claim 10, Droge discloses a method for secure communication between a 
mobile device (see Droge paragraphs 61-62) and a server (see Droge paragraph 60) on 
a wide area network, comprising: generating a symmetric session key at the mobile 
device; encrypting the symmetric session key at the mobile device using a public key 
associated with the server; transmitting the encrypted session key to the server over a 
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wireless link with a gateway to the wide area network; decrypting the encrypted session 
key at the server using a private key corresponding to the public key; encrypting a 
payload using the symmetric session key at the mobile device (see Droge paragraph 50 
reference "algorithms that might be used to encrypt data at [the link layer] includes, 
without limitation, the DATA ENCRYPTION STANDARD (DES)"); adding a header to 
the payload to form a data packet at the mobile device; encrypting the encrypted 
payload and the header of the data packet using an encryption algorithm for secured 
communication over the wireless link to form an encrypted data packet at the mobile 
device; and transmitting the encrypted data packet from the mobile device to the 
gateway (see Droge Abstract; paragraphs 36, 40, and 50; figures 5 and 6, steps 92- 
102). 

As per claim 11, Droge discloses the method of claim 10, further comprising: 
receiving the encrypted data at the gateway; decrypting the encrypted data packet at 
the gateway to recover a decrypted data packet, the decrypted data packet having the 
encrypted payload encrypted with the symmetric session key; forwarding the decrypted 
data packet to the server over the wide area network (see Droge figure 6, steps 104- 
1 14); decrypting the payload at the server using the decrypted session key (see Droge 
paragraph 50). 

As per claim 15, Droge discloses the method of claim 10, wherein the payload 
includes location information (see Droge paragraph 58, reference "IP header"). 
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As per claim 16, Droge discloses the method of claim 10, wherein the generating 
symmetric session key at the mobile device further comprises generating the symmetric 
key based on a random number (see Droge paragraph 53). 

As per claim 17, Droge discloses the method of claim 10, wherein the encrypting 
a payload using the symmetric session key employs at least one of the encryption 
algorithms DESX or DES (see Droge paragraph 53). 

As per claim 20, Droge discloses the method of claim 1, wherein the first 
algorithm comprises at least one of the encryption algorithms DES or DESX (see Droge 
paragraph 53). 

As per claim 25, Droge discloses the method of claim 1, wherein the data packet 
includes location information (see Droge paragraph 58, reference "IP header"). 

As per claim 26, Droge discloses the method of claim 4, wherein the symmetric 
session key is generated based on a random number (see Droge paragraph 53). 

As per claim 27, Droge discloses the device of claim 6 further comprising: a 
memory coupled to the encryption engine, the memory having a public key associated 
with a server on the wide area network stored therein (see Droge paragraph 39). 

As per claim 29, Droge discloses a computer readable medium comprising 
program instructions for performing a method comprising: encrypting a payload 
according to a first encryption algorithm; adding a header to the encrypted payload to 
form a data packet; encrypting the encrypted payload and the header of the data packet 
according to a second encryption algorithm, the second encryption algorithm being an 
encryption algorithm used for secure communications over a wireless link; transmitting 
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the data packet to a server on a wide area network over a wireless link with a gateway 
providing access to the wide area network (see Droge Abstract; paragraphs 36, 40, and 
50; figures 5 and 6). 

As per claim 30, Droge discloses the computer readable medium of claim 29, 
wherein the first algorithm uses a symmetric key (see Droge paragraph 53 reference 
"DES"). 

As per claim 31 , Droge discloses the computer readable medium of claim 29, the 
method further comprising: receiving the data packet at the gateway; decrypting the 
data packet at the gateway according to the second algorithm; forwarding the recovered 
data packet to a computer on the wide area network; and decrypting the payload at the 
computer on the wide area network according to the first algorithm (see Droge 
paragraphs 36-40 and 51). 

As per claim 32, Droge discloses the computer readable medium of claim 29, 
wherein the first algorithm uses a symmetric session key (see Droge paragraph 53 
reference "DES"). 

As per claim 33, Droge discloses the computer readable medium of claim 29, 
wherein the first algorithm comprises at least one of the encryption algorithms DESX or 
DES (see Droge paragraph 53). 

As per claim 34, Droge discloses the computer readable medium of claim 29 
wherein the data packet includes location information (see Droge paragraph 58, 
reference "IP header"). 
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As per claim 35, Droge discloses the computer readable medium of claim 32 
wherein the symmetric session key is generated based on a random number ( see 
Droge paragraph 53). 

Conclusion 

Applicant's amendment necessitated the new ground(s) of rejection presented in 
this Office action. Accordingly, THIS ACTION IS MADE FINAL. See MPEP 
§ 706.07(a). Applicant is reminded of the extension of time policy as set forth in 37 
CFR 1.136(a). 

A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. In the event a first reply is filed within 
TWO MONTHS of the mailing date of this final action and the advisory action is not 
mailed until after the end of the THREE-MONTH shortened statutory period, then the 
shortened statutory period will expire on the date the advisory action is mailed, and any 
extension fee pursuant to 37 CFR 1.136(a) will be calculated from the mailing date of 
the advisory action. In no event, however, will the statutory period for reply expire later 
than SIX MONTHS from the date of this final action. 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Tamara Teslovich whose telephone number is (571) 
272-4241. The examiner can normally be reached on Mon-Fri 8-4:30. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Emmanuel Moise can be reached on (571) 272-3865. The fax phone 



Application/Control Number: 09/927,928 



Page 10 



Art Unit: 2137 

number for the organization where this application or proceeding is assigned is 571- 
273-8300. 

Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). 
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